Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2018-12689

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - phpLDAPadmin 1.2.2 allows LDAP injection via a crafted serverid parameter in a cmd.php?cmd=loginform request, or a crafted username and password in the login...

9.8CVSS7.3AI score0.00427EPSS
Exploits1References3
OSV
OSVadded 2024/12/19 2:15 p.m.1 views

DEBIAN-CVE-2024-9102

phpLDAPadmin since at least version 1.2.0 through the latest version 1.2.6.7 allows users to export elements from the LDAP directory into a Comma-Separated Value CSV file, but it does not neutralize special elements that could be interpreted as a command when the file is opened by a spreadsheet...

5CVSS5.4AI score0.00141EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/07/11 12:0 a.m.1 views

phpLDAPadmin Environmental Issues Vulnerabilities

PhpLdapAdmin is a web-based LDAP client from the individual developer of PhpLdapAdmin, which is primarily used to manage LDAP servers. An environmental issue vulnerability exists in phpLDAPadmin, which stems from an http request smuggling vulnerability in the makeHttpRequest function in...

6.5CVSS6.9AI score0.00104EPSS
Exploits0References4
OSV
OSVadded 2020/11/05 6:44 p.m.0 views

USN-4620-1 phpldapadmin vulnerability

It was discovered that phpLDAPadmin didn't properly sanitize before being echoed to the user. A remote attacker could inject arbitrary HTML/Javascript code in a user's context and cause a crash, resulting in denial of service or potential execution of arbitrary code...

6.1CVSS6.7AI score0.0006EPSS
Exploits1References2
OSV
OSVadded 2019/11/26 5:15 a.m.2 views

DEBIAN-CVE-2011-4082

A local file inclusion flaw was found in the way the phpLDAPadmin before 0.9.8 processed certain values of the "Accept-Language" HTTP header. A remote attacker could use this flaw to cause a denial of service via specially-crafted request...

7.5CVSS7.2AI score0.00922EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2011/11/02 12:0 a.m.1 views

PT-2011-4838 · Php · Phpldapadmin

Name of the Vulnerable Software and Affected Versions: phpLDAPadmin versions 1.2.x through 1.2.1 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via an debug command in the cmd.php fil...

4.3CVSS5.4AI score0.11833EPSS
Exploits1References14
OSV
OSVadded 2005/09/02 11:3 p.m.1 views

DEBIAN-CVE-2005-2792

Directory traversal vulnerability in welcome.php in phpLDAPadmin 0.9.6 and 0.9.7 allows remote attackers to read arbitrary files via a .. dot dot in the customwelcomepage parameter...

5CVSS6.9AI score0.13987EPSS
Exploits1References1
Rows per page
Query Builder